Ziyad zshehri
edermi
/ kerberoast_pws.xz
Last active
February 10, 2026 15:08
edermi Kerberoast PW list (XZ format)
This file has been truncated, but you can view the full file.
HarmJ0y
/ cobaltstrike_sa.txt
Created
September 28, 2018 22:22
Cobalt Strike Situational Awareness Commands
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Windows version: | |
| reg query x64 HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion | |
| Users who have authed to the system: | |
| ls C:\Users\ | |
| System env variables: | |
| reg query x64 HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Environment | |
| Saved outbound RDP connections: |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| ''' | |
| Carve PE files from binary data. | |
| Write them into the current directy named after their hash. | |
| Example:: | |
| $ python carvepe.py unallocated.bin | |
| INFO:__main__:found pe at 0x0, length: 0xd8000 | |
| INFO:__main__:writing pe file to 273ed32b617fd79ed1b88ebd4521a441.bin |